
CLAIMS 



yf. An access control protocol between an electronic 
key and an electronic lock performing access control, in 
which protocol, following presentation of said electronic 

5 key to said electronic lock, a random variable message 
prompting authentication of the electronic key is 
transmitted from said electronic lock to said electronic 
key, wherein, on receiving said random variable message 
prompting authentication, said protocol consists of at 

10 least, in succession: 

- calculating and transmitting from said electronic 
key to said electronic lock a digital signature value of 
said random variable message prompting authentication 
based on a private signature key and specific 

15 authentication data, said specific authentication data 
transmitted by said electronic key to said electronic lock 
consisting of at least one public key certificate 
associated with said private signature key, said public 
key certificate consisting of a digital signature value of 

20 at least one validity time period relating to a right of 
access and of said public key, said signature value being 
calculated from another private signature key associated 
with another public key, and, after reception by said 
electronic lock of said signature value and said specific 

25 authentication data: 

verification by said electronic lock of the 
authenticity of said signature value as a function of said 
specific authentication data and, in response to a 
positive or negative result of said verification: 

30 acceptance or respectively refusal of^aid access. 

The protocol according to claim yf, wherein said 
step of verification of said signature value by said 
electronic lock includes, in succession: 

verification by said electronic lock of the 

35 authenticity of said specific authentication data based on 



comparison with reference data and, in the event of a 
positive result of said comparison: 

verification by said electronic lock of said 
signature value as a function of said specific 
authentication data. ^2 

^fT protocol according to claims ^ and^^.. 

wherein said step of verification by said electronic lock 
of the authenticity of said specific authentication data 
consists of checking said validity time period associated 
10 with s^id public key. 

^ The protocol according to claim wherein 
validity time period includes a plurality of non- 
contiguous time intervals . «^ 

j^l^' The protocol according to claim^. wherein each 
15 validity time period consists of at least one time 
interval having two limits each expressed as a date in 
terms of day, month, year and a time in terms of hour, 
minute, second. 

The protocol according to claim^lT, wherein said 
20 random variable message prompting authentication is a 
function of an identification value of said electronic 
lock an^a continuously increasing variable valu^. 

19. The protocol according to claim p,- wherein, 
after reception of said random variable message prompting 
25 authentication by said electronic key but before the step 
of calculation and transmission of a signature value by 
said electronic key, said electronic key having an 
internal clock, said protocol further consists of an 
auxiliary verification step for authorising calculation of 
30 the signature of said random variable message prompting 
authentication, said auxiliary verification step 
consisting of : 

- using the other public key associated with said 
other private signature key to verify said public key 
35 certificate and said validity time period associated with 



said public key against said internal clock, to verify the 
validity of said public key, 

verifying the association of said private 
signature key and said public key, whose validity has been 
5 verified in the preceding step, and, on the basis of 
positive and negative result criteria, for the preceding 
two verification steps: 

continuing or respectively interrupting said 
access control protocol . ^ 
10 * The protocol according to claim j/; further 

comprising a plurality of tests limiting all attack 
outside said validity time period, which tests are 
performed during said step of verification by said 
electronic lock of the authenticity of said signature 
15 value, after said step of verification by said electronic 
lock of the authenticity of the specific authentication 
data consisting of checking said validity time period 
associated with said public key but before said step of 
verification by said electronic lock of the authenticity 
20 of said signature value, said protocol further comprising 
a plurality of tests limiting any attack outside said 
validity time period. 

'The protocol according to claim further 
comprising, before said step of calculation and 
25 transmission from said electronic key to said electronic 
lock of a signature value of said random Variable message 
prompting authentication and specific authentication data, 
said electronic key including a real-time clock: 

- a step of testing if a time variable delivered by 
30 said real-time clock is inside said validity time period 
and, in the event of a negative result of said test: 

a step of invalidation of said electronic key 
interrupting said access control and leading to refusal of 
said access by said electronic lock. 
35 22^^ An electronic key comprising cryptographic 




calculation means and message or data transmission means 
for implementing an access control protocol between an 
electronic key and an electronic lock performing access 
control, in which protocol, following presentation of said 
5 electronic key to said electronic lock, a random variable 
message prompting authentication of the electronic key is 
transmitted from said electronic lock to said electronic 
key and on receiving said random variable message 
prompting authentication, said protocol consists of at 
10 least, in succession, calculating and transmitting from 
said electronic key to said electronic lock a digital 
signature value of said random variable message prompting 
authentication based on a private signature key and 
specific authentication data, said specific aiuthentication 
15 data transmitted by said electronic key to said electronic 
lock consisting of at least one public key certificate 
associated with said private signature key, said public 
key certificate consisting of a digital signature value of 
at least one validity time period relating to a right of 
20 access and of said public key, said signature value being 
calculated from another private signature key associated 
with another public key, and, after reception by said 
electronic lock of said signature value and said specific 
authentication data, verification by said electronic lock 
25 • of the authenticity of said signature value as a function 
of said specific authentication data and, in response to a 
positive or negative result of said verification, 
acceptance or respectively refusal of said access, for 
controlling access to an electronic lock by said 
30 electronic key, wherein, in addition to a central 
processor unit (CPU) , said cryptographic calculation means 
include at least : 

a protected access memory area for storing at 
least one private signature key and specific 
35 authentication data, said specific authentication data 




consisting of at least one public key certificate 
consisting of a digital signature value of at least one 
validity time period relating to a right of access and 
said public key, and 

a read-only memory used to call programs for 
calculating the digital signature value of a random 
variable message delivered by said electronic lock using 
said private signature key. 

An electronic lock comprising cryptographic 
10 calculation means and message or data transmission means 
for implementing an access control protocol between an 
electronic key and an electronic lock performing access 
control, in which protocol, following presentation of said 
electronic key to said electronic lock, a random variable 
15 message prompting authentication of the electronic key is 
transmitted from said electronic lock to said electronic 
key and on receiving said random variable message 
prompting authentication, said protocol consists of at 
least, in succession, calculating and transmitting from 
20 said electronic key to said electronic lock a digital 
signature value of said random variable message prompting 
authentication based on a private signature key. and 
specific authentication data, said specific authentication 
data transmitted by said electronic key to said electronic 
25 lock consisting of at least one public key certificate 
associated with said private signature key, said public 
key certificate consisting of a digital signature value of 
at least one validity time period relating to a right of 
access and of said public key, said signature value being 
30 calculated from another private signature key associated 
with another public key, and, after reception by said 
electronic lock of said signature value and said specific 
authentication data, verification by said electronic lock 
of the authenticity of said signature value as a function 
35 of said specific authentication data and, in response to a 




positive or negative result of said verification, 

acceptance or respectively refusal of said access, for 

controlling access to said electronic lock by an 

electronic key, wherein, in addition to a central 

processor unit, said calculation means include at least: 

- a protected access memory area for storing at 

least one public signature verification key, and 

a read-only memory used to call signature 

verification programs based on said at least one public 



